Urgent Security Alert: OpenClaw Gateway Vulnerability Requires Immediate Action

GoPlus Chinese Community has issued an urgent warning regarding a critical security flaw discovered in the OpenClaw Gateway. Users are strongly advised to upgrade to OpenClaw version 2026.2.25 or higher immediately. Additionally, it is imperative to audit and revoke any unnecessary credentials, API keys, and node permissions associated with Agent instances.

The identified attack vector involves a sophisticated chain of events. Attackers first direct victims to a malicious website hosted on a compromised domain. Subsequently, JavaScript embedded on this page initiates a WebSocket connection to the locally hosted OpenClaw Gateway. The script then executes a rapid brute-force attack on the gateway's password, reportedly attempting hundreds of passwords per second. Upon successful credential compromise, the script silently registers itself as a trusted device, granting the attacker administrative control over the Agent.

The OpenClaw Gateway, which operates by binding to localhost, serves as the central coordination layer for the Agent and is a fundamental component of the OpenClaw ecosystem.

#crypto #blockchain #news